Patent US5023908 - Method and apparatus for personal identification

Veröffentlichungsnummer	US5023908 A
Publikationstyp	Erteilung
Anmeldenummer	07/341,932
Veröffentlichungsdatum	11. Juni 1991
Eingetragen	21. Apr. 1989
Prioritätsdatum	30. Nov. 1984
Auch veröffentlicht unter	US4998279
Erfinder	Kenneth Weiss
Ursprünglich Bevollmächtigter	Emc Corporation Rsa Security Holding, Inc. Rsa Security Llc Rsa Security Inc. Security Dynamics Technologies, Inc.
US-Klassifikation	713/184 340/5.85 235/379 705/72 235/382 235/380
Internationale Klassifikation	G07C9/00 G07F7/10 G06F7/58 G06F21/00 G06F1/00
Unternehmensklassifikation	G06F21/725 G06F7/582 G06Q20/385 G07C9/00023 G07F7/1016 G06Q20/4012 G06Q20/346 G07F7/10 G07F7/1008 G06F21/34
Europäische Klassifikation	G06F21/72A G06F21/34 G06Q20/4012 G06Q20/385 G06Q20/346 G07F7/10E G07C9/00B4 G07F7/10 G06F7/58P G07F7/10D
Referenzen	Patentzitate (29) Nichtpatentzitate (12) Referenziert von (97)

Externe Links	USPTO USPTO-Zuordnung Espacenet

Method and apparatus for personal identification

US 5023908 A

Zusammenfassung

A method and apparatus for providing improved security for a personal identification number (PIN) in a personal identification and verification system of the type wherein a time dependent nonpredictable code is generated at a device in the possession of the individual, which code is unique to the individual and this code is communicated to, and compared with a nonpredictable code generated at, a central verification computer. In this system, the PIN is mixed with the nonpredictable code before transmission of these values to the central verification computer. a nonsecret code is previously transmitted to the central verification computer and is used to retrieve the PIN and the appropriate nonpredictable code for the user. These values are used to strip the PIN from the transmitted nonpredictable code and the stripped PIN and remaining nonpredictable code are compared with the corresponding retrieved values in order to determine verification.

Ansprüche

What is claimed is:

1. In a personal identification system of the type wherein a user is provided with a device generating a unique, time-varying, nonpredictable code, with a nonsecret identifying code and with a secret PIN, the nonpredictable code at a given instant and the PIN being provided to a central verification computer to effect verification; apparatus for providing improved security of the PIN comprising:

means for mixing the nonpredictable code generated by the device at a given time with the PIN to generate a combined coded value;

means for separately communicating the nonsecret identifying code and the coded value form said means for mixing to the central verification computer; and

wherein the central verification computer includes means for utilizing the nonsecret identifying code to retrieve the PIN and appropriate nonpredictable code for the individual, means for stripping the PIN from the coded value from said means for communicating, the nonpredictable code remaining after the stripping of the PIN, and means for utilizing the retrieved PIN, and appropriate nonpredictable code, the stripped PIN and remaining nonpredictable code for performing a verification operation.

2. Apparatus as claimed in claim 1 wherein said means for performing a verification operation includes means for comparing the PIN and nonpredictable code obtained in response to the nonsecret code with the stripped PIN and remaining nonpredictable code.

3. Apparatus as claimed in claim 1 wherein said verification computer includes means for utilizing the communicated nonsecret identifying code to obtain a unique challenge value for the individual; and

means for communicating the challenge value to the device.

4. Apparatus as claimed in claim 3 wherein said challenge value communicating means includes means for communicating the challenge value to the individual; and

wherein the device includes means for permitting the individual to input the challenge value and his PIN to the device.

5. Apparatus as claimed in claim 4 wherein said device includes means responsive to the challenge value for generating the nonpredictable code; and

wherein said mixing means includes means, included as part of the device, for receiving the inputted PIN and the generated nonpredictable value and for generating an output which is a predetermined function of the input.

6. Apparatus as claimed in claim 5 wherein said mixing means adds the PIN to the nonpredictable code.

7. Apparatus as claimed in claim 1 wherein said device includes means for permitting the individual to input his PIN to the device; and

wherein said means for mixing is included as part of said device and is adapted to receive the PIN inputted by the individual and the nonpredictable code and to generate an output which is a predetermined function of the input.

8. Apparatus as claimed in claim 7 wherein said mixing means adds the PIN to the nonpredictable code.

9. A method for identifying an individual comprising the steps of:

utilizing a device int he possession of the individual to generate a unique time-varying, nonpredictable code;

mixing the nonpredictable code generated at a given time with a secret PIN for the individual to generate a combined code; and

communicating a nonsecret identifying code for the individual and the combined code to a central verification computer;

the verification computer utilizing the nonsecret identifying code to retrieve the PIN and appropriate nonpredictable code for the individual, stripping the PIN from the communicated combined code, and utilizing the retrieved PIN and nonpredictable code, the stripped PIN and the remaining nonpredictable code to perform a verification operation.

10. A method as claimed in claim 9 wherein the verification computer also generates a unique challenge value in response to the nonsecret identifying code; and

including the step of communicating the challenge value to the device in possession of the individual.

11. A method as claimed in claim 10 wherein the challenge value is communicated to the individual; and

including the step of the individual inputting the challenge value and his PIN to the device.

12. A method as claimed in claim 11 wherein the device includes means responsive to the challenge value for generating the nonpredictable code; and

wherein the mixing step includes the device receiving the PIN and the nonpredictable code and generating an output which is a predetermined function of the inputs.

13. A method as claimed in claim 12 wherein said predetermined function is a sum of said inputs.

14. A method as claimed in claim 9 including the step of the individual inputting his PIN to the device; and

wherein the mixing step includes the steps of the device receiving the PIN inputted by the individual and the nonpredictable code and generating an output which is a predetermined function of the inputs.

15. A method as claimed in claim 14 wherein said predetermined function is a sum of said input.

Beschreibung

CROSS REFERENCE TO OTHER APPLICATIONS

This application is a continuation-in-part of application Ser. No. 802,579 filed Nov. 27, 1985, now U.S. Pat. No. 4,885,778 which application is itself a continuation-in-part of application Ser. No. 676,626 filed Nov. 30, 1984, now U.S. Pat. No. 4,720,860, issued Jan. 19, 1988.

FIELD OF THE INVENTION

This invention relates to methods and apparatus for identifying an individual and more particularly to methods and apparatus for providing improved security for a personal identification number (PIN) utilized in conjunction with such an identification system.

BACKGROUND OF THE INVENTION

Personal identification systems may be based on something someone has, such as a card or badge, something that someone knows, such as a PIN, or some characteristic of the individual, such as his fingerprints or speech pattern. Security for such systems is enhanced by utilizing two or more of the above in performing the identification.

For example, parent U.S. Pat. No. 4,720,860, discloses a personal identification system wherein the individual has a card or other small, portable device which contains a microprocessor programmed to utilize a secret algorithm to generate a nonpredictable number from a stored value unique to the individual and a time varying value provided for example by a clock. The nonpredictable value is preferably displayed on the device. The individual then enters his secret PIN into a central verification system, either directly or over a telephone line, causing the central system to access stored information corresponding to the individual and to utilize at least some of this information to generate a nonpredictable value at the central computer utilizing the same algorithm as at the individual's microprocessor. At the same time this is being done, the individual is entering the number appearing at that period of time on the display of his device. The two values will match, signifying identification of the individual, only if the individual has entered the correct PIN and if the individual has the proper device so that the nonpredictable code displayed corresponds to that being generated at the central verification computer.

In other systems, such as those shown in U.S. Pat. No. 4,599,489 issued July 8, 1986, the PIN may either be stored in the user's device, or may be entered by the user. If the PIN is stored in the device, it is read from the device by a suitable reader and causes the central verification computer to generate a unique challenge code to the individual. This challenge code may either be entered by the individual into his machine, or may be automatically sensed by the machine, and is operated on by the user's device to generate a unique nonpredictable code which is then entered into the central computer to effect verification.

One potential difficulty with either of the systems indicated above is that an unauthorized individual may be able to obtain access to the user's PIN by electronic eavesdropping, reducing the security provided by the system. If, for example, the PIN is transmitted over public lines, such as telephone lines, from the user to the central verification computer, it may be possible to tap these lines and intercept the PIN as it is being transmitted. If the PIN is stored in the device, someone obtaining the device surreptitiously may, through sophisticated means, be able to determine the PIN stored in the device and thus defeat the security of the system. Furthermore, any storing of a PIN or password in the portable device for comparison defeats the purpose of an independent identification factor and reduces security to a "thing" possessed.

A need therefore exists for an improved means of communicating a PIN or other user identification code to a central verification system such that someone tapping the line over which the code is being sent will be unable to determine the secret identification number and someone obtaining possession of the user device will also not be able to obtain access to the user's secret identification number from the device.

SUMMARY OF THE INVENTION

In accordance with the above, this invention provides a method for personal identification and apparatus for the practice thereof wherein a device in the possession of the individual is utilized to generate a unique, time varying, nonpredictable code; the nonpredictable code generated at a given time is mixed with a secret PIN for the individual; the mixed output is communicated to a central verification computer; and the verification computer strips the PIN from the communicated value and utilizes the stripped PIN and remaining nonpredictable code o perform a verification operation. Preferably, before the mixed value is communicated to the verification computer, a nonsecret identifying code for the individual is communicated to the verification computer; the verification computer utilizes the nonsecret identifying code to obtain the PIN and appropriate nonpredictable code for the individual; and the verification operation includes the PIN and appropriate nonpredictable code obtained during the obtaining step being compared with the stripped PIN and remaining nonpredictable code. The verification computer may also generate a unique challenge value in response to the nonsecret identifying code which challenge code is communicated to the device in possession of the individual. For one embodiment, the challenge code is communicated to the individual and the individual inputs the challenge value and the PIN to his device, the device includes means responsive to the challenge value for generating the nonpredictable code. During the mixing step, the device may receive the PIN and the nonpredictable code and generate an output which is a predetermined function of the inputs. The predetermined function may, for example, be a sum of the inputs, for example the sum of the inputs without carry.

The foregoing and other objects, features and advantages of the invention will be apparent from the following more particular description of preferred embodiments of the invention as illustrated in the accompanying drawings.

IN THE DRAWINGS

FIG. 1 is a semi-block schematic diagram of the verification system of a first embodiment of the invention.

FIG. 2 is a block schematic diagram of a second embodiment of the invention.

FIG. 3 is a block flow diagram illustrating the operation of the first embodiment of the invention and alternative steps for the second embodiment of the invention.

DETAILED DESCRIPTION

FIG. 1 shows illustrative structure for a personal identification system of a first embodiment of the invention. In this FIGURE, a user verification device 10 is provided which is of the type described in the parent applications. The device is preferably of the general size and shape of a standard credit card, although its thickness dimension may be slightly greater than that of such cards. The device 10 has a clock which generates a time-dependent digital output to a microprocessor which is programmed with a unique algorithm to operate on the time-dependent clock input and on a stored static value unique to a given user to generate a multi-bit nonpredictable code. A plurality of input areas 12 are provided on the face of device 10. These areas are preferably each indicative of a numerical digit, for example the digits 1-0 as shown in FIG. 1, and may be pressure-sensitive pads or otherwise adapted to generate an electrical output indicative of the area when the area is touched by the user. Spacing may be provided between the individual areas 12 to assure distinctive outputs. As will be described in greater detail hereinafter, the user may input his unique PIN on areas 12 which are mixed in the processor in device 10 with the nonpredictable code generated therein in response to the time-dependent and static inputs to generate a multi-bit nonpredictable code which is displayed on area 14 of device 10. Area 14 may be a liquid crystal display or other suitable display device for producing numeric or alpha-numeric characters. Each area of display 14 is adapted to display a different digit of the nonpredictable code.

The user initially transmits a nonsecret identifying code to verification computer 16 by keying this number into a telephone 18 at his location. This number is transmitted over telephone lines 20 to telephone 22 at the verification station and through a modem 24 at this station to the verification computer. The user may then use the telephone 18 to key in and transmit the nonpredictable code being displayed at that time on display 14.

FIG. 3 is a flow diagram illustrating in greater detail the operation of the system of FIG. 1 to perform a verification operation. Referring to FIG. 3, the first step in the operation, step 30, is for the user to send his nonsecret code to verification computer (VC) 16. As previously indicated, this is accomplished by the user keying his nonsecret identification number into telephone 18 for transmission through telephone line 20, telephone 22 and modem 24 to the verification computer.

In response to the user input of his nonsecret code, the verification computer retrieves the user's PIN and generates the nonpredictable code for the user, using the same algorithm and stored static value as user device 10, and using a time-related value from a clock device at the verification computer, which is maintained in synchronism with the clock at the user device in a manner discussed in the parent application (step 32). At the same time that the verification computer is retrieving the PIN and nonpredictable code for the user, the user is inputting his PIN into his device 10 using key pads or areas 12 (step 34). While the user is inputting his pin, the user device is continuously generating nonpredictable code values at its internal processor in response to the clock value and the stored static value using the unique algorithm at the user device processor (step 36).

The next step in the operation, step 38, is for the generated nonpredictable code and the inputted pin to be mixed by the processor in device 10 to generate a new nonpredictable code which is displayed on display 14. The mixing operation may be a simple addition of the two values without carry, or with carry, (a constant added to a pseudo random number produces a pseudo random number) or may involve a more sophisticated mixing algorithm.

During step 40, the user transmits the displayed value by use of telephone 18 through telephone line 20, telephone 22, and modem 24 to verification computer 16.

During the next step in the operation, step 42, the verification computer uses the PIN for the user which was retrieved during step 32 to strip the PIN from the inputted nonpredictable code, the result being a PIN value and a nonpredictable code value. During step 44 the stripped PIN is compared with the PIN retrieved during step 32 and during step 46 the nonpredictable code remaining after the inputted value has the PIN stripped therefrom is compared with the retrieved nonpredictable code. If matches are obtained during both steps 44 and 46 (step 48) the verification computer signifies verification. If a match is not found during either step 44 or step 46 (step 50) then the user is rejected.

A procedure is thus provided wherein user verification may be obtained using the simple and inexpensive procedure disclosed in the parent applications while still providing a high level of security for the user PIN. This security is achieved since the user PIN is never available on an open line which could be tapped except in the form of a word which is a mixture of the PIN with a nonpredictable code and which is virtually impossible to decipher.

FIG. 2 illustrates an alternative configuration in which the teachings of this invention may be utilized. In FIG. 2, the user device 10 is of the same type shown in FIG. 1. However, for this embodiment of the invention, the user device is adapted to be used in proximity to the verification station rather than from a remote location over telephone lines. For this embodiment of the invention, the verification station 60 includes a computer 62, a display 64, such as for example a CRT display, and an input device 66 which may, for example, be a standard computer input keyboard. Referring again to FIG. 3, the operation with this embodiment of the invention starts with step 30, during which the user sends a nonsecret code to the verification computer 62 by, for example, keying this code into input device 66. In response to receiving the nonsecret code, computer 60 retrieves the PIN and generates the nonpredictable code for the user (step 32) and also retrieves a challenge code for the user which is displayed on display 64 (step 70). The user inputs his PIN and the challenge code in an order established for the system to user device 10 using input pads 12 (step 72). During step 74, the processor in device 10 uses the inputted challenge code and the time inputted from its clock to generate a nonpredictable code which, during step 38, is mixed with the inputted pin and the results are displayed on display 14 of device 10. From this point on, the operation for this embodiment of the invention is the same as that previously described with respect to the embodiment of FIG. 1.

Thus, with this embodiment of the invention, as with the prior embodiment of the invention, the pin in uncoded form is never transmitted in a manner such that it could be observed and is not resident in the user's device where it might, using sophisticated technology, be retrieved.

As an alternative to the embodiment shown in FIG. 2, the nonsecret code may be recorded in machine-readable form on device 10 and input device 66 might include a card reader which the card is inserted into to permit the nonsecret code to be read into computer 62.

While the invention has been shown and described above with reference to preferred embodiments, the foregoing and other changes in form and detail may be made therein by one skilled in the art without departing from the spirit and scope of the invention.

Patentzitate

Zitiertes Patent	Eingetragen	Veröffentlichungsdatum	Antragsteller	Titel
US3806874	10. Apr. 1973	23. Apr. 1974	Gretag Ag,Ch	Identification system for individuals
US3886451	28. Jan. 1974	27. Mai 1975	Hewlett-Packard Company	Random phase modulating time base and method to improve measurement averaging counter resolution
US3900867	9. Febr. 1973	19. Aug. 1975	Siemens Aktiengesellschaft	Interrogator-responsor system for different interrogator codes
US3995111	21. Febr. 1975	30. Nov. 1976	Fujitsu Ltd.	Transmit phase control system of synchronization burst for SDMA/TDMA satellite communication system
US4104694	28. Okt. 1976	1. Aug. 1978	Hargrove; Daniel J.	Asynchronous digital locking system
US4126761	11. Febr. 1977	21. Nov. 1978	Noise Cancellation Technologies, Inc.	Method of and means for processing an audio frequency signal to conceal intelligility
US4145568	6. Okt. 1964	20. März 1979	Gretag Aktiengesellschaft	Method and apparatus for ciphering and deciphering messages
US4145569	22. Dez. 1964	20. März 1979	Gretag Aktiengesellschaft	Method and apparatus for synchronizing the ciphering and deciphering of binary-coded messages
US4185166	12. Sept. 1977	22. Jan. 1980	Datotek, Inc.	Multi-mode digital enciphering system
US4193073	16. Jan. 1968	11. März 1980	Kohnen, Hubert	Method and apparatus for position determination
US4277837	11. Febr. 1980	7. Juli 1981	International Business Machines Corporation	Personal portable terminal for financial transactions
US4295039	3. Dez. 1979	13. Okt. 1981	International Business Machines Corporation	Method and apparatus for achieving secure password verification
US4302810	28. Dez. 1979	24. Nov. 1981	International Business Machines Corporation	Method and apparatus for secure message transmission for use in electronic funds transfer systems
US4320387	19. Dez. 1979	16. März 1982	Powell; William S.	Information communicating apparatus and method
US4326098	2. Juli 1980	20. Apr. 1982	International Business Machines Corporation	High security system for electronic signature verification
US4471216	27. Okt. 1980	11. Sept. 1984	Compagnie Internationale Pour L'Informatique Cii-Honeywell Bull (Societe Anonyme	System and process for identification of persons requesting access to particular facilities
US4494211	24. Nov. 1982	15. Jan. 1985	The United States Of America As Represented By The Secretary Of The Navy	Balanced system for ranging and synchronization between satellite pairs
US4536647	15. Juli 1983	20. Aug. 1985	Atalla Corporation	Pocket banking terminal, method and system
US4543657	15. Sept. 1981	24. Sept. 1985	The Secretary Of State For Defence In Her Britannic Majesty'S Government Of The United Kingdom Of Great Britain And Northern Ireland	Synchronizing of clocks
US4578530	7. Dez. 1983	25. März 1986	Visa U.S.A., Inc.	End-to-end encryption system and method of operation
US4582434	23. Apr. 1984	15. Apr. 1986	Heath Company	Time corrected, continuously updated clock
US4589066	31. Mai 1984	13. Mai 1986	General Electric Company	Fault tolerant, frame synchronization for multiple processor systems
US4599489	22. Febr. 1984	8. Juli 1986	Gordian Systems, Inc.	Solid state key for controlling access to computer software
US4605820	10. Nov. 1983	12. Aug. 1986	Visa U.S.A. Inc.	Key management system for on-line communication
US4609777	23. Dez. 1985	2. Sept. 1986	Gordian Systems, Inc.	Solid state key for controlling access to computer software
US4636583	24. Juni 1970	13. Jan. 1987	The United States Of America As Represented By The Secretary Of The Navy	Synchronization of long codes of bounded time uncertainty
US4641322	18. Okt. 1984	3. Febr. 1987	Nec Corporation	System for carrying out spread spectrum communication through an electric power line
US4677617	4. Okt. 1985	30. Juni 1987	Hughes Aircraft Company	Rapid frequency-hopping time synchronization
US4849613	13. Mai 1985	18. Juli 1989	Betriebswirtschaftliches Institut Der Deutschen Kreditgenossenschaft Bik Gmbh	Method and device for making an electronic authentication

Nichtpatentzitate

Referenz
1	"PFX Identify Authentication System", Brochure; Sytek, Inc. of Mountain View, Calif.; No Date.
2	"Watchword Generator RG500", Brochure; racal-Guardata; Bulletin RG500, 4/89.
3	IBM Tech. Discl. Bull., (vol. 29, No. 15, 6/86; pp. 14 16); 380/24.
4	IBM Tech. Discl. Bull., (vol. 29, No. 15, 6/86; pp. 14-16); 380/24.
5	Lennon et al., "Composite Time-Variant Random Numbers", IBM Tech. Discl. Bull.; (vol. 26, No. 7A; 12/83; pp. 3292-3293.
6	Lennon et al., Composite Time Variant Random Numbers , IBM Tech. Discl. Bull.; (vol. 26, No. 7A; 12/83; pp. 3292 3293.
7	Lennon et al., IBM Tech. Discl. Bull., (vol. 28, No. 7A, 12/83, pp. 3286 3288.
8	Lennon et al., IBM Tech. Discl. Bull., (vol. 28, No. 7A, 12/83, pp. 3286-3288.
9	McLellan, "The Future of Data Security Looks Credit-Card Thin", Information Week, (10/7/85; pp. 24-30.
10	McLellan, The Future of Data Security Looks Credit Card Thin , Information Week, (10/7/85; pp. 24 30.
11	PFX Identify Authentication System , Brochure; Sytek, Inc. of Mountain View, Calif.; No Date.
12	Watchword Generator RG500 , Brochure; racal Guardata; Bulletin RG500, 4/89.

Referenziert von

Zitiert von Patent	Eingetragen	Veröffentlichungsdatum	Antragsteller	Titel
US5168520	18. März 1991	1. Dez. 1992	Security Dynamics Technologies, Inc.	Method and apparatus for personal identification
US5180902	17. Mai 1991	19. Jan. 1993	Bane; Mark	Self verifying transaction card with disabling capability
US5237614	7. Juni 1991	17. Aug. 1993	Security Dynamics Technologies, Inc.	Integrated network security system
US5239294	7. Dez. 1990	24. Aug. 1993	Motorola, Inc.	Method and apparatus for authenication and protection of subscribers in telecommunication systems
US5267314	17. Nov. 1992	30. Nov. 1993	Stambler; Leon	Secure transaction system and method utilized therein
US5317636	9. Dez. 1992	31. Mai 1994	Arris, Inc.	Method and apparatus for securing credit card transactions
US5361062	25. Nov. 1992	1. Nov. 1994	Security Dynamics Technologies, Inc.	Personal security system
US5406619	31. März 1994	11. Apr. 1995	At&T Corp.	Universal authentication device for use over telephone lines
US5481611	9. Dez. 1993	2. Jan. 1996	Gte Laboratories Incorporated	Method and apparatus for entity authentication
US5491752	2. Sept. 1994	13. Febr. 1996	Digital Equipment Corporation, Patent Law Group	System for increasing the difficulty of password guessing attacks in a distributed authentication scheme employing authentication tokens
US5508687	11. März 1994	16. Apr. 1996	Diehl Gmbh & Co.	Remote control, in particular for a locking device
US5524073	14. Sept. 1993	4. Juni 1996	Stambler; Leon	Secure transaction system and method utilized therein
US5537102	27. Okt. 1993	16. Juli 1996	Electronic Monitoring Systems, Inc.	Apparatus and method for a system capable of remotely validating the identity of individual and their location
US5555303	22. Mai 1995	10. Sept. 1996	Stambler; Leon	Secure transaction system and method utilized therein
US5572193	22. Aug. 1994	5. Nov. 1996	Motorola, Inc.	Method for authentication and protection of subscribers in telecommunications systems
US5581614	18. Jan. 1994	3. Dez. 1996	Index Systems, Inc.	Method for encrypting and embedding information in a video program
US5583933	5. Aug. 1994	10. Dez. 1996	Mark; Andrew R.	Method and apparatus for the secure communication of data
US5590038	20. Juni 1994	31. Dez. 1996	C-Sam, Inc.	Universal electronic transaction card including receipt storage and system and methods of conducting electronic transactions
US5594429	25. Okt. 1994	14. Jan. 1997	Alps Electric Co., Ltd.	Transmission and reception system and signal generation method for same
US5606614	19. Apr. 1996	25. Febr. 1997	British Telecommunications Public Limited Company	Personal identification systems
US5646998	22. Mai 1995	8. Juli 1997	Stambler; Leon	Secure transaction system and method utilized therein
US5657388	16. März 1994	12. Aug. 1997	Security Dynamics Technologies, Inc.	Method and apparatus for utilizing a token for resource access
US5661807	18. Aug. 1995	26. Aug. 1997	International Business Machines Corporation	Authentication system using one-time passwords
US5724423	18. Sept. 1995	3. März 1998	Telefonaktiebolaget Lm Ericsson	Method and apparatus for user authentication
US5732133	7. Juni 1996	24. März 1998	Smart Tone Authentication, Inc.	System and method for selecting and generating telephone access numbers for limiting access to a telephone service
US5742684	20. Mai 1996	21. Apr. 1998	Enco-Tone Ltd.	Method and apparatus for data encryption and transmission
US5745555	7. Juni 1996	28. Apr. 1998	Smart Tone Authentication, Inc.	System and method using personal identification numbers and associated prompts for controlling unauthorized use of a security device and unauthorized access to a resource
US5754652	14. Dez. 1994	19. Mai 1998	Lucent Technologies Inc.	Method and apparatus for secure pin entry
US5793302	12. Nov. 1996	11. Aug. 1998	Stambler; Leon	Method for securing information relevant to a transaction
US5818930	7. Juni 1996	6. Okt. 1998	Smart Tone Authentication, Inc.	Auto-dialer housing
US5825871	7. Juni 1996	20. Okt. 1998	Smart Tone Authentication, Inc.	Information storage device for storing personal identification information
US5884271	6. Sept. 1996	16. März 1999	Pitroda; Satyan G.	Device, system and methods of conducting paperless transactions
US5907597	23. Febr. 1996	25. Mai 1999	Smart Tone Authentication, Inc.	Method and system for the secure communication of data
US5936541	10. Juni 1997	10. Aug. 1999	Stambler; Leon	Method for securing information relevant to a transaction
US5949874	25. Nov. 1997	7. Sept. 1999	Smart Tone Authentication, Inc.	Method and system for compensating for signal deviations in tone signals over a transmission channel
US5974148	13. Mai 1997	26. Okt. 1999	Stambler; Leon	Method for securing information relevant to a transaction
US6014441	25. Nov. 1997	11. Jan. 2000	Smart Tone Authentication, Inc.	Method and system for generation of tone signals over a transmission channel
US6028926	23. Sept. 1997	22. Febr. 2000	Henderson; Daniel A.	Dialer programming system and device with integrated printing process
US6130621	2. Sept. 1994	10. Okt. 2000	Rsa Security Inc.	Method and apparatus for inhibiting unauthorized access to or utilization of a protected device
US6175312	4. Dez. 1992	16. Jan. 2001	Microchip Technology Incorporated	Encoder and decoder microchips and remote control devices for secure unidirectional communication
US6498847	9. Febr. 2000	24. Dez. 2002	Henderson Daniel A.	Dialer programming and device with integrated printing process
US6705520	15. Nov. 1999	16. März 2004	C-Sam, Inc.	Point of sale adapter for electronic transaction device
US6769607	6. Juni 2000	3. Aug. 2004	C-Sam, Inc.	Point of sale and display adapter for electronic transaction device
US6925439	10. März 1999	2. Aug. 2005	C-Sam, Inc.	Device, system and methods of conducting paperless transactions
US6985583	4. Mai 1999	10. Jan. 2006	Rsa Security Inc.	System and method for authentication seed distribution
US7107454	30. Jan. 2001	12. Sept. 2006	Fujitsu Limited	Signature system presenting user signature information
US7111176	31. März 2000	19. Sept. 2006	Intel Corporation	Generating isolated bus cycles for isolated execution
US7191344	8. Aug. 2002	13. März 2007	Authenex, Inc.	Method and system for controlling access to data stored on a data storage device
US7308426	11. Aug. 1999	11. Dez. 2007	C-Sam, Inc.	System and methods for servicing electronic transactions
US7359507	12. März 2001	15. Apr. 2008	Rsa Security Inc.	Server-assisted regeneration of a strong secret from a weak secret
US7363494	4. Dez. 2001	22. Apr. 2008	Rsa Security Inc.	Method and apparatus for performing enhanced time-based authentication
US7392388	27. Juli 2001	24. Juni 2008	Swivel Secure Limited	Systems and methods for identity verification for secure transactions
US7415476	10. März 2003	19. Aug. 2008	Authentidate Holding Corp.	Digital file management and imaging system and method including secure file marking
US7441697	7. Juni 2007	28. Okt. 2008	American Express Travel Related Services Company, Inc.	Limited use pin system and method
US7448538	13. Juli 2007	11. Nov. 2008	American Express Travel Related Services Company, Inc.	Limited use pin system and method
US7463133	27. März 2004	9. Dez. 2008	American Express Travel Related Services Company, Inc.	Systems and methods for providing a RF transaction device operable to store multiple distinct calling card accounts
US7472827	7. Okt. 2004	6. Jan. 2009	American Express Travel Related Services Company, Inc.	Limited use PIN system and method
US7502467	2. Nov. 2005	10. März 2009	Rsa Security Inc.	System and method for authentication seed distribution
US7503480	12. März 2004	17. März 2009	American Express Travel Related Services Company, Inc.	Method and system for tracking user performance
US7529563	10. Juli 2000	5. Mai 2009	C-Sam, Inc.	System for distribution and use of virtual stored value cards
US7542942	11. März 2004	2. Juni 2009	American Express Travel Related Services Company, Inc.	System and method for securing sensitive information during completion of a transaction
US7587756	23. Juli 2004	8. Sept. 2009	American Express Travel Related Services Company, Inc.	Methods and apparatus for a secure proximity integrated circuit card transactions
US7603701	30. Juni 2005	13. Okt. 2009	Xerox Corporation	Tools for access to databases via internet protocol networks
US7627531	7. März 2001	1. Dez. 2009	American Express Travel Related Services Company, Inc.	System for facilitating a transaction
US7688975	25. Okt. 2002	30. März 2010	Authenex, Inc.	Method and apparatus for dynamic generation of symmetric encryption keys and exchange of dynamic symmetric key infrastructure
US7694876	2. Mai 2008	13. Apr. 2010	American Express Travel Related Services Company, Inc.	Method and system for tracking user performance
US7705732	9. Dez. 2004	27. Apr. 2010	Bishop Fred	Authenticating an RF transaction using a transaction counter
US7716484	9. März 2001	11. Mai 2010	Rsa Security Inc.	System and method for increasing the security of encrypted secrets and authentication
US7725427	28. Sept. 2004	25. Mai 2010	Bishop Fred	Recurrent billing maintenance with radio frequency payment devices
US7735132	4. Aug. 2005	8. Juni 2010	Research In Motion Limited	System and method for encrypted smart card PIN entry
US7762457	21. Juli 2004	27. Juli 2010	American Express Travel Related Services Company, Inc.	System and method for dynamic fob synchronization and personalization
US7768379	21. Juli 2004	3. Aug. 2010	American Express Travel Related Services Company, Inc.	Method and system for a travel-related multi-function fob
US7805372	8. Juni 2007	28. Sept. 2010	Universal Secure Registry, Llc	Universal secure registry
US7805378	30. Aug. 2004	28. Sept. 2010	American Express Travel Related Servicex Company, Inc.	System and method for encoding information in magnetic stripe format for use in radio frequency identification transactions
US7809651	8. Juni 2007	5. Okt. 2010	Universal Secure Registry, Llc	Universal secure registry
US7835960	10. Juni 2004	16. Nov. 2010	American Express Travel Related Services Company, Inc.	System for facilitating a transaction
US7882361	5. Febr. 2004	1. Febr. 2011	Oracle America, Inc.	Method and system for accepting a pass code
US7889052	10. Jan. 2003	15. Febr. 2011	Xatra Fund Mx, Llc	Authorizing payment subsequent to RF transactions
US7925535	10. März 2004	12. Apr. 2011	American Express Travel Related Services Company, Inc.	System and method for securing RF transactions using a radio frequency identification device including a random number generator
US7996324	30. Sept. 2004	9. Aug. 2011	American Express Travel Related Services Company, Inc.	Systems and methods for managing multiple accounts on a RF transaction device using secondary identification indicia
US8001055	21. Febr. 2007	16. Aug. 2011	Universal Secure Registry, Llc	Method, system and apparatus for secure access, payment and identification
US8059814	28. Sept. 2007	15. Nov. 2011	Emc Corporation	Techniques for carrying out seed or key derivation
US8060750	29. Juni 2007	15. Nov. 2011	Emc Corporation	Secure seed provisioning
US8087074	17. Okt. 2005	27. Dez. 2011	Symantec Corporation	One time password
US8121941	14. Dez. 2006	21. Febr. 2012	American Express Travel Related Services Company, Inc.	System and method for automatic reconciliation of transaction account spend
US8234220	26. Febr. 2009	31. Juli 2012	Universal Secure Registry, Llc	Universal secure registry
US8271397	24. Juni 2011	18. Sept. 2012	Universal Secure Registry, Llc	Method and apparatus for secure access, payment and identification
US8307210	2. Mai 2008	6. Nov. 2012	Emc Corporation	Method and apparatus for secure validation of tokens
US8332935	7. Juni 2010	11. Dez. 2012	Research In Motion Limited	System and method for encrypted smart card pin entry
US8370638	17. Febr. 2006	5. Febr. 2013	Emc Corporation	Derivative seeds
US20100241867	7. Juni 2010	23. Sept. 2010	Research In Motion Limited	System and method for encrypted smart card pin entry
US20120096535	6. Dez. 2011	19. Apr. 2012	Symantec Corporation	One Time Password
WO1993004425A1	12. Aug. 1992	4. März 1993	Universal Photonix, Inc.	System for remotely validating the identity of indivuals and determining their locations
WO1995025391A1	16. März 1995	21. Sept. 1995	Security Dynamics Technologies, Inc.	Method and apparatus for utilizing a token for resource access
WO2002021463A2	7. Sept. 2001	14. März 2002	Keech, Winston, Donald	Code identification method and system
WO2002045441A1	28. Nov. 2001	6. Juni 2002	Oberle, Robert, R.	Replacing stored code with user inputting code on the rf id card
WO2005050912A1	18. Nov. 2003	2. Juni 2005	Abildgaard, Flemming	A hand-portable electronic device for verifying an input test sequence of characters against a predetermined sequence of characters

Patente